CVE-2011-4538
moderate-risk
Published 2020-03-09
Lexmark X, W, T, E, and C devices before 2012-02-09 allow attackers to obtain sensitive information by reading passwords within exported settings.
Do I need to act?
-
0.23% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
5
CVSS 5.3/10
Medium
NETWORK
/ LOW complexity
Affected Products (20)
X860 Firmware
X862 Firmware
X864 Firmware
X734 Firmware
X736 Firmware
X738 Firmware
X651 Firmware
X652 Firmware
X654 Firmware
X656 Firmware
X658 Firmware
X543 Firmware
X544 Firmware
X546 Firmware
X463 Firmware
X464 Firmware
X466 Firmware
X363 Firmware
X364 Firmware
W850 Firmware
Affected Vendors
References (2)
Third Party Advisory
http://contentdelivery.lexmark.com/webcontent/CVE-2011-4538.pdf
Third Party Advisory
http://contentdelivery.lexmark.com/webcontent/CVE-2011-4538.pdf
45
/ 100
moderate-risk
Severity
21/34 · High
Exploitability
1/34 · Minimal
Exposure
23/34 · High